|
251061
|
7.5 |
HIGH
Network
|
moxa
|
mxsecurity
|
The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable. By acquiring a valid authenticator, an attacker can pose as an aut…
|
NVD-CWE-Other
|
CVE-2024-4739
|
2024-10-22 23:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251062
|
5.4 |
MEDIUM
Network
|
tahoe
|
debrandify
|
The Debrandify · Remove or Replace WordPress Branding plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.1.2 due to insuffi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9674
|
2024-10-22 23:02 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251063
|
8.8 |
HIGH
Network
|
jonvincentmendoza
|
dynamic_elementor_addons
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Jon Vincent Mendoza Dynamic Elementor Addons allows PHP Local File Inclusion.T…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2024-49243
|
2024-10-22 23:00 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251064
|
5.4 |
MEDIUM
Network
|
sajjadhsagor
|
advanced_category_and_custom_taxonomy_image
|
The Advanced Category and Custom Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ad_tax_image shortcode in all versions up to, and including, 1.0.9 d…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9425
|
2024-10-22 22:55 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251065
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, invalid ALPN in TLS/QUIC traffic when JA4 matching/loggin…
|
CWE-617
Reachable Assertion
|
CVE-2024-47522
|
2024-10-22 22:51 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251066
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" lea…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-47188
|
2024-10-22 22:50 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251067
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" lea…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-47187
|
2024-10-22 22:48 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251068
|
5.3 |
MEDIUM
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, a logic error during fragment reassembly can lead to fail…
|
CWE-193
Off-by-one Error
|
CVE-2024-45796
|
2024-10-22 22:37 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251069
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, rules using datasets with the non-functional / unimplemen…
|
CWE-617
Reachable Assertion
|
CVE-2024-45795
|
2024-10-22 22:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251070
|
9.0 |
CRITICAL
Adjacent
|
microsoft
|
windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019
|
Windows Netlogon Elevation of Privilege Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-38124
|
2024-10-22 22:35 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
